We think our work contributes to the field and have found many issues for our clients with them, but we have resisted fantastical headlines like the ones in this paper because we are aware of the caveats.
-
-
IMHO A tool that "detects & shows" vulnerabilities at scale is far more useful to blackhats. How many defensive teams make adequate use of Shodan or respond to alerts from ShadowServer?
-
At the very least, the incidence rate of vulnerabilities detected is too high. Investing effort to lower the rate would make surveillance efforts more compelling.
End of conversation
New conversation -
-
-
Agreed, but as much as we'd like them to, the fact is that devs won't produce 100% secure code anytime soon. So bandaids isn't necessarily bad.
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.